[CLSA-2023:1679944242] Fix CVE(s): CVE-2022-31629, CVE-2022-31628, CVE-2022-31631
Type:
security
Severity:
Moderate
Release date:
2023-03-27 19:10:42 UTC
Description:
* SECURITY UPDATE: Denial of service - debian/patches/CVE-2022-31628.patch: Fix potential infinite recursion in phar wrapper when using quine gzip file - CVE-2022-31628 * SECURITY UPDATE: Cookie injection - debian/patches/CVE-2022-31629.patch: Add cookie integrity validation - CVE-2022-31629 * SECURITY UPDATE: Integer overflow - debian/patches/CVE-2022-31631.patch: Fix integer overflow that could cause PDO::quote() to return an improperly quoted string - CVE-2022-31631
Updated packages:
  • libapache2-mod-php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:0ca2031f030b85e933011ec31a9609111e95cc6b
  • libphp7.0-embed_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:7ca1d33f803327c0302781f29bebba8665f0ea0d
  • php7.0_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_all.deb
    sha:f69bb8f54d9548388483bbeca894838c4d9821e9
  • php7.0-bcmath_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:abe7c194b2e38b0f76b51ac273b16686cd71fb30
  • php7.0-bz2_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:86e851b0b052ff2b34d58f6243540188e2528e5e
  • php7.0-cgi_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:8f54df9851b69fe3149b021c4887e27937283633
  • php7.0-cli_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:82354df4d1956b430338dcf757040fb0c4331ab5
  • php7.0-common_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:2d7ec5188a8e7e62c5612708aa2bafde8605dd7e
  • php7.0-curl_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:e18435a33bb4c5a87a2642759737513f03552ffc
  • php7.0-dba_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:786b2096afd609c16436118c1270e9e5d2440c1e
  • php7.0-dev_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:1e8f3f177c4266e888129d93dd7efd15113cad13
  • php7.0-enchant_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:8f81762e79a78bd2643057c1c62a18870899f336
  • php7.0-fpm_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:1d55a538e9068d2aa7d3debec7e27b80744d8f37
  • php7.0-gd_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:a7c5da16cc770379547ef4c089abe021f46720c9
  • php7.0-gmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:3ad90f7ab572eebab71a155cd41026bcf4ea3840
  • php7.0-imap_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:04111773122bfa3991f165371011ee109a289ffe
  • php7.0-interbase_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:bfdc1b1aa8eff4952fade8145bcfe2c19962dc3b
  • php7.0-intl_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:84ecf61592ac89aecab23e083188b8b5f3c720f2
  • php7.0-json_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:f59d56a74b7a90c80b81a5e8bdf734197c7616bf
  • php7.0-ldap_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:afacebeaa213ba5bf980773b985b1185a15d381d
  • php7.0-mbstring_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:d4a9202a50755adf9f1229150d7110f106c58782
  • php7.0-mcrypt_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:0131e7a5943eb2a83c5b0dd2c3fae7810ed5ab1f
  • php7.0-mysql_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:81a5ae220f5285f6ee8129f914133706c4924b80
  • php7.0-odbc_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:6491036aaa3a6933e0cd30901e5b753216e5a89f
  • php7.0-opcache_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:9a1a512330d5bc56cd3f0ae93ede63e845b7bacb
  • php7.0-pgsql_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:69ff48890ef80bb2799625471a7785912fee010a
  • php7.0-phpdbg_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:fb7133f91f04568677f02f41f7478e60328f3347
  • php7.0-pspell_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:9d3265c3b2b22753f2f40d378182797e1755c9e7
  • php7.0-readline_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:732e196b2d3b5fcca615636edc582b7c9525b6fe
  • php7.0-recode_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:dba6bef58b2b6d16ea77c807eaa97adf31502639
  • php7.0-snmp_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:788ca37e13588ae58d3c3f55ac7186458b972834
  • php7.0-soap_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:db2c8b1cc5ef55e47c1a8a0a8d2ceb6271d3bcf7
  • php7.0-sqlite3_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:4417a43b9dde5a3391541ccca229f5394a0dba31
  • php7.0-sybase_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:6f0d9ea0861c0d670d35ff10feecadbcb135bed1
  • php7.0-tidy_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:fd0b41efd364ed825512a3dd37e084a35e151529
  • php7.0-xml_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:f241e294c72f65d6bf37b36fa841b9dc10b8d2c5
  • php7.0-xmlrpc_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:e19341f6ba8e50cbdd3f69ae60045a0adcba1ffa
  • php7.0-xsl_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_all.deb
    sha:27397214d0791cc7331688bd5ec159de262b54d3
  • php7.0-zip_7.0.33-0ubuntu0.16.04.17+tuxcare.els5_amd64.deb
    sha:ad561af1bc5589769806671992757279f5efbe38
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.